JP2005051348A - Transmitter, mobile terminal, authentication server, communication system, program, and communication method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a technology for authenticating object authentication data given to an object and for easily enhancing the security. <P>SOLUTION: ID transmitters 1A to 1c transmit object link data resulting from linking an object one-time password to a unique ID. A reader 21 of a digital mobile phone 2 receives the object link data and transmits the received data to an authentication server 4 via a digital mobile phone network 3. The authentication server 4 receives the object link data from the digital mobile phone 2 via the digital mobile phone network 3 and authenticates the unique ID included in the object link data on the basis of the linked object one-time password. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

[0001]
BACKGROUND OF THE INVENTION
The present invention relates to a transmission device, a mobile terminal, an authentication server, a communication system, a program, and a communication method.
[0002]
[Prior art]
Conventionally, in a management system for managing the entry and exit of a person to and from a building or site, the person who enters and exits is authenticated by an individual or a group using an ID card possessed by the person and a card reader that reads information of the ID card. Yes. The card reader is under the control of an operator who issues and manages IDs and owns and operates a management system. Furthermore, the card reader is connected to a management server that controls the management system via a wired communication line. Therefore, in such a management system, for example, an ID given to the door in the middle of transmitting the ID given to the door and the information read from the ID card to the management server from the card reader attached to the door. There is an advantage that the risk of eavesdropping and tampering can be reduced.
[0003]
In addition, an entrance / exit management system that authenticates a person using a mobile phone instead of an ID card has been proposed (see, for example, Patent Document 1). As shown in FIG. 13, the entrance / exit management system includes a user 401, a mobile phone 402 possessed by the user as an alternative to an ID card, a telephone network 403, and a central controller 404 that controls the entire entrance / exit management system. A plurality of doors 406a to 406c, electric locks 405a to 405c of the doors 406a to 406c, transmission means 407a to 407c provided on the doors 406a to 406c, and reception means 408a to 408a provided to the doors 406a to 406c 408c. The transmitting means 407a to 407c transmit the positional information of the doors 406a to 406c specifying the door to the mobile phone 402, respectively. Receiving means 408 a to 408 c receive information transmitted from mobile phone 402.
[0004]
The central control device 401 includes caller number recognition means 404a, determination means 404b, storage means 404c, and position information recognition means 404d. The central controller 401 has a unique telephone number. The storage unit 404c stores a registered telephone number and position information of a door that is permitted to pass for each registered telephone number. Caller number recognition means 404 a connects to mobile phone 402 via telephone network 403. The caller number recognizing means 404a recognizes the caller telephone number of the mobile phone 402 and inputs it to the determining means 404b by the caller's call number notification service. The position information recognition unit 404d receives the position information of the doors 406a to 406c from the mobile phone 402 and inputs them to the determination unit 404b. The determination unit 404b determines whether the caller telephone number input from the caller number recognition unit 404a matches the registered telephone number stored in the storage unit 404c. The determination unit 404b determines whether or not the user 401 is permitted to pass. Then, the determination unit 404b transmits the determination result to the mobile phone 402.
[0005]
As shown in FIG. 14, when the user 401 is within a range in which position information transmitted from the transmission means 407a provided on the door 406a can be received (S401), the mobile phone 402 stores the position information of the door 406a. Receive. In step (S401), when the user 401 is outside the receivable range, the mobile phone 402 does not receive the position information of the door 406a. When the user 401 wants to open the door 406a, he / she makes a call by inputting the telephone number of the central controller 401 to the mobile phone 402 (S402). The central controller 401 receives an incoming call via the telephone network 403 (S403). The cellular phone 402 transmits the position information of the door 406a received from the transmission means transmission means 407a to the central control device 401 (S404).
[0006]
The caller number recognition unit 404a recognizes the caller telephone number by the call number notification service and inputs it to the determination unit 404b (S405). The position information recognition unit 404d receives and recognizes the position information of the door 406a that the user 401 wants to open from the mobile phone 402, and inputs it to the determination unit 404b (S406). The determination unit 404b determines whether or not the caller telephone number matches the registered telephone number stored in the storage unit 404c (S407). If they match in step (S407), the determination unit 404b acquires data on the door to be permitted to pass corresponding to the registered telephone number (S408). Then, the determination unit 404b determines whether or not the passage of the received position information through the door 406a is permitted (S409).
[0007]
If the passage is permitted in step (S409), the determination unit 404b transmits the passage permission information indicating the passage permission to the mobile phone 402 as information indicating the result of the user authentication via the telephone network 403. (S410). The cellular phone 402 wirelessly transmits the received passage permission information to the receiving unit 408a (S411). When receiving the passage permission information, the receiving means 408a unlocks the electric lock 405a of the door 406a (S412). On the other hand, if the caller telephone number does not match the registered telephone number in step (S407), or if the door of the received location information is not permitted in step (S409), determination means 404b The traffic non-permission information indicating the traffic non-permission is transmitted to the mobile phone 402 via the telephone network 403 (S413). According to such an entrance / exit management system, there is no need for wiring to connect the central control unit 404 and the doors 406a to 406c by wire when the system is constructed, and the advantage is that the degree of freedom of the system can be increased and the cost can be reduced There is.
[0008]
[Patent Document 1]
JP 2002-161656 A
[0009]
[Problems to be solved by the invention]
However, in a management system using an ID card and a card reader, it is necessary to wire a wired communication line for connecting the card reader to the management server, and it is necessary to place the card reader under the management of the operator. Therefore, there is a problem that system construction is complicated and costly.
[0010]
In addition, in the entrance / exit management system that performs authentication using the mobile phone 402, there is a risk that the positional information of the doors transmitted from the transmitting means 407a to 407c provided in the doors 406a to 406c may be wiretapped, counterfeited, or falsified. It was. Even if they are transmitted to the central control unit 404, the central control unit 404 cannot authenticate the position information itself. Therefore, the central control unit 404 cannot detect whether the position information information is eavesdropped or forged, or has been tampered with, and the door passage permission information is illegally acquired. There was a risk of being. Furthermore, information itself indicating the result of user authentication, such as passage permission information, may be wiretapped and used illegally. When performing packet communication using the mobile phone 402, the central control unit 404 cannot recognize the caller telephone number of the mobile phone 402 by the caller ID notification service. Therefore, the central controller 404 has a problem that user authentication using the caller telephone number cannot be performed.
[0011]
Therefore, an object of the present invention is to provide a transmitting device, a mobile terminal, an authentication server, a communication system, a program, and a communication method that can authenticate object identification data attached to an object and can easily improve security. To do.
[0012]
[Means for Solving the Problems]
The transmitting device according to the present invention includes an object identification data storage means for storing object identification data assigned to an object, and a one-time password for generating a one-time password linked to the object identification data (hereinafter referred to as an “object one-time password”). Transmission that connects the password generation means, the object identification data and the object one-time password, and transmits the concatenated data (hereinafter, the data obtained by connecting the object identification data and the object one-time password is referred to as “object connection data”). Means.
[0013]
According to such a transmission device, an object one-time password can be connected to the object identification data for transmission. Therefore, the object identification data can be authenticated based on the connected object one-time password. Moreover, since the one-time password is an effective one-time password for only one authentication, it cannot be used even if it is wiretapped. Therefore, according to such a transmission device, security can be easily improved.
[0014]
Moreover, it is preferable that the transmission device includes a detection unit that detects the state of the object, and the transmission unit transmits the object connection data based on the detection result by the detection unit. The situation of the object includes the situation of the object itself and the situation around the object. According to this, the transmission device can transmit the object connection data based on the state of the object, triggered by the detection result by the detection means. Furthermore, it is preferable that the one-time password generating means generates an object one-time password based on a detection result by the detecting means. According to this, the transmission device can generate an object one-time password based on the state of the object.
[0015]
The transmitting device authenticates the authentication result information with receiving means for receiving authentication result information indicating a result of user authentication from the mobile terminal when the user of the mobile terminal receiving the object connection data receives user authentication. A result one-time password generating means for generating a one-time password (hereinafter referred to as “result one-time password”) and a result authentication means for authenticating the received authentication result information based on the result one-time password; Is preferred. According to this, when the user who acquired the object connection data from the transmission device receives user authentication, the transmission device can also authenticate the authentication result information based on the one-time password for results. Therefore, the transmission device can further improve security.
[0016]
The mobile terminal according to the present invention includes a receiving unit that receives the object connection data obtained by connecting the object identification data attached to the object and the object time password, and the received object connection data to the authentication server that authenticates the object identification data. And transmitting means for transmitting via a mobile communication network. According to such a mobile terminal, the object connection data obtained by connecting the object identification data and the object one-time password can be received and transmitted to the authentication server via the mobile communication network. Therefore, the object identification data can be authenticated based on the connected object one-time password. Moreover, since the one-time password is an effective one-time password for only one authentication, it cannot be used even if it is wiretapped. Furthermore, since the mobile terminal can transmit the object connection data to the authentication server via the mobile communication network, it is necessary to wire a wired communication line like a management system using an ID card and a card reader, It is not necessary to use a card reader under the management of the managing operator. Therefore, according to such a mobile terminal, security can be easily improved.
[0017]
Further, the mobile terminal stores user identification data storage means for storing user identification data for identifying the user of the mobile terminal, and user one for generating a one-time password (hereinafter referred to as “user one-time password”) linked to the user identification data. A time password generating means, wherein the transmitting means concatenates the user identification data and the user one-time password, and represents the concatenated data (hereinafter referred to as “user concatenated data”). And the object connection data may be transmitted to the authentication server.
[0018]
According to this, in addition to the object connection data, user connection data in which the user identification data and the user one-time password are connected can be transmitted to the authentication server. Therefore, user identification data can also be authenticated based on the linked user one-time password. Moreover, since the user one-time password is also a valid one-time password for only one authentication, it cannot be used even if it is wiretapped. Therefore, according to such a mobile terminal, it is possible to easily improve security for authentication of user identification data.
[0019]
The authentication server according to the present invention includes a receiving means for receiving the object connection data obtained by connecting the object identification data attached to the object and the object one-time password from the mobile terminal via the mobile communication network, and the received object connection data. It comprises object identification data authenticating means for authenticating the contained object identification data based on an object one-time password linked to the object identification data.
[0020]
According to such an authentication server, the object connection data obtained by connecting the object identification data and the object one-time password is received, and the object identification data included in the object connection data is authenticated based on the connected object one-time password. can do. Moreover, since the one-time password is an effective one-time password for only one authentication, it cannot be used even if it is wiretapped. Furthermore, the authentication server can receive the object connection data from the mobile terminal via the mobile communication network. Therefore, there is no need to wire a wired communication line as in a management system using an ID card and a card reader, and there is no need to use a card reader under the management of an operator who issues and manages IDs. Therefore, according to such an authentication server, security can be easily improved.
[0021]
Further, the receiving means receives from the mobile terminal user connection data in which the user identification data for identifying the user of the mobile terminal and the user one-time password are connected, and the authentication server receives the user identification data included in the received user connection data. It is preferable to provide a user identification data authenticating means for authenticating based on a user one-time password linked to the user identification data.
[0022]
According to this, the authentication server receives the user connection data in which the user identification data and the user one-time password are connected in addition to the object connection data, and the user identification data included in the user connection data is connected to the connected user. Authentication can be based on a one-time password. Moreover, since the user one-time password is also a valid one-time password for only one authentication, it cannot be used even if it is wiretapped. Therefore, according to such an authentication server, it is possible to easily improve security for authentication of user identification data.
[0023]
The communication system according to the present invention connects an object identification data attached to an object and an object one-time password to be connected to the object identification data, and transmits the connected object connection data, and the transmitter transmits The object connection data is received via the mobile communication network from the mobile terminal that has received the object connection data, and the object identification data included in the received object connection data is based on the object one-time password connected to the object identification data. And an authentication server for authentication.
[0024]
According to such a communication system, the transmitting device can transmit the object identification data by connecting the object one-time password. Then, the authentication server receives the object connection data transmitted by the transmitting device from the mobile terminal that has received the data via the mobile communication network, and the object identification data included in the object connection data is connected to the connected object one time. Authentication can be based on a password. Therefore, according to the communication system, it is necessary to wire a wired communication line like a management system using an ID card and a card reader, or a card reader placed under the management of an operator who issues and manages an ID is used. There is no need, and security can be improved easily.
[0025]
The program according to the present invention includes a receiving means for receiving the object connection data in which the object identification data attached to the object and the object one-time password are connected, and the object connection data received by the receiving means. This is a program for causing an authentication server to authenticate to function as transmission means for transmitting via a mobile communication network. According to such a program, it is possible to realize a mobile terminal including a reception unit that receives the object connection data and a transmission unit that transmits the received object connection data to the authentication server via the mobile communication network. Therefore, according to such a program, security can be easily improved.
[0026]
The communication method according to the present invention includes a step of generating an object one-time password to be connected to object identification data attached to an object, a step of connecting the object identification data and the object one-time password, and the connected object connection data. And a step of transmitting.
[0027]
DETAILED DESCRIPTION OF THE INVENTION
[First Embodiment]
〔Communications system〕
As shown in FIG. 1, the communication system includes a plurality of ID transmission devices 1 a to 1 c, a digital mobile phone 2, a digital mobile phone network 3, an authentication server 4, and an application execution server 5.
[0028]
The ID transmitters 1a to 1c are transmitters that connect the object identification data given to the object and the object one-time password to be connected to the object identification data, and transmit the connected object connection data. The object to which the object identification data is given is not limited, and for example, there is an actual article or device. Specifically, object identification data is given to objects such as doors, bus stops, postboxes, and gates. In this embodiment, a unique ID that can identify an object is used as the object identification data. The unique ID is a fixed value that is given to the object and is fixed until it is changed. Hereinafter, an object to which a unique ID transmitted by each ID transmission device 1a to 1c is given is referred to as an object of each ID transmission device.
[0029]
The ID transmission device 1a includes a main body 10a and a sensor 11a. The ID transmitters 1a to 1c are attached to the objects of the ID transmitters 1a to 1c or installed in the vicinity of the objects. Further, the main body 10a and the sensor 11a may be provided separately. For example, only the sensor 11a may be attached to the object, and the main body 10a may be installed around the object. The ID transmitter 1a is preferably installed in a place where it cannot be easily taken away or easily touched from the outside of the ID transmitter 1a.
[0030]
The sensor 11a is detection means for detecting the state of the object. The sensor 11a detects the status of the object. The sensor 11a detects the situation of the object itself and the situation around the object as the situation of the object. The ID transmitter 1a is attached to an object or installed near the object. Further, only the sensor 11a can be attached to the object. Therefore, the sensor 11a can detect the situation of the object by detecting the situation around the sensor 11a, for example. The sensor 11a detects the movement of the object itself, the movement of an object or a person around the object, the event of the object itself, the event of the object, the state of the object itself, the state of the object, and the changes thereof. Detect as the status of the object. The sensor 11a detects the state of the object according to the purpose.
[0031]
For example, when the object is a post, the sensor 11a senses the movement of a lid attached to a posting unit on which a postal item is posted, and detects that the postal item has been posted on the post. When the object is a gate, the sensor 11a senses infrared rays emitted by a person passing through the gate and detects that the person has passed through the gate. The sensor 11a observes the object and detects the state of the object. The sensor 11a inputs a detection result to the main body 10a. When the sensor 11a is provided apart from the main body 10a, the sensor 11a and the main body 10a are connected by wire or wirelessly. Then, the sensor 11a wirelessly transmits the detection result to the main body unit 10a or transmits the detection result via a wire. The sensor 11a preferably inputs a detection result to the main body 10a only when a predetermined situation is detected. For example, the sensor 11a inputs the detection result to the main body 10a only when it is detected that a mail piece has been posted on the post or when a person has passed through the gate.
[0032]
The main unit 10 a includes a counter 12, an encryption key storage unit 13, an OTP (One Time Password) generation unit 14, a unique ID storage unit 15, a transmission unit 16, and a housing unit 17. The counter 12 inputs a counter value used for generating the one-time password to the OTP generation unit 14. The counter 12 stores a counter value. The counter 12 advances the counter value based on the detection result of the sensor 11a. The counter 12 inputs a counter value to the OTP generation unit 14 based on the detection result input from the sensor 11a.
[0033]
For example, when the counter 12 indicates that the detection result has detected a predetermined situation, the counter 12 adds 1 to the stored counter value to advance the counter value by 1, and the advanced counter value is changed to OTP. Input to the generation unit 14. In addition, when the detection result is input to the counter 12 only when the sensor 11a detects a predetermined situation, when the detection result is input from the sensor 11a, the counter 12 sets the stored counter value. 1 is added to advance the counter value by one, and the advanced counter value is input to the OTP generation unit 14. The counter 12 newly stores the advanced counter value. Thus, the counter value is a variable value that is sequentially updated based on the detection result. Further, the counter value stored in the ID transmitter is different for each ID transmitter.
[0034]
The encryption key storage unit 13 is an encryption key storage unit that stores an encryption key. The encryption key is used to generate a one-time password. The encryption key stored in the ID transmission device is different for each ID transmission device. The encryption key is a fixed value that is set for each ID transmission device and is fixed until changed. The OTP generation unit 14 is an object one-time password generation unit that generates an object one-time password to be linked to the object identification data. The OTP generation unit 14 can generate a one-time password using a counter synchronization method.
[0035]
The OTP generator 14 generates an object one-time password based on the detection result by the sensor 11a. The OTP generator 14 generates a one-time password using an algorithm. Specifically, the OTP generation unit 14 acquires a counter value from the counter 12. That is, the OTP generation unit 14 advances the counter 12 based on the detection result, and acquires the input counter value. When receiving the input of the counter value, the OTP generation unit 14 acquires the encryption key from the encryption key storage unit 13. The OTP generation unit 14 assigns the obtained encryption key and counter value as parameters to the algorithm for encryption. This encryption result becomes a one-time password. For example, a one-way function such as a hash function can be used as the algorithm.
[0036]
In this way, the OTP generation unit 14 generates the object one-time password based on the detection result by the sensor 11a by generating the object one-time password based on the counter value advanced based on the detection result by the sensor 11a. To do. Therefore, the ID transmission device 1a can generate an object one-time password based on the state of the object. The OTP generation unit 14 inputs the generated one-time password to the transmission unit 16.
[0037]
The unique ID storage unit 15 is an object identification data storage unit that stores object identification data given to an object. The unique ID storage unit 15 stores a unique ID assigned to the object. The transmitting unit 16 is a transmitting unit that connects the object identification data and the object one-time password, and transmits the connected object connection data. The transmitter 16 transmits the object connection data based on the detection result by the sensor 11a. Specifically, the transmission unit 16 acquires an object one-time password from the OTP generation unit 14. That is, when the counter 12 inputs a counter value to the OTP generation unit 14 based on the detection result of the sensor 11a and the OTP generation unit 14 generates an object one-time password, the transmitting unit 16 generates the generated object one. Get the time password. When receiving the one-time password, the transmitting unit 16 acquires a unique ID from the unique ID storage unit 15.
[0038]
The transmission unit 16 connects the acquired unique ID and the acquired thing one-time password to generate the object connection data. The transmission part 16 transmits the produced | generated thing connection data. The transmitter 16 transmits the object connection data to the outside wirelessly. Specifically, the transmitting unit 16 is connected to the digital mobile phone 2 via wireless and transmits the object connection data wirelessly. That is, the transmitting unit 16 transmits the object connection data by a wireless method that can be received by the digital mobile phone 2. For example, the transmission unit 16 transmits the object connection data using radio waves and infrared rays. Specifically, IrDA, Bluetooth (registered trademark), a wireless tag, or the like can be used as the transmission unit 16. The transmitter 16 only needs to be able to transmit the object connection data to the digital mobile phone 2 by radio at a short distance. For example, if wireless connection (wireless ad hoc connection) with the digital mobile phone 2 is possible only when the digital mobile phone 2 has moved into a specific area where the object connection data transmitted by the transmitter 16 can be received. Good.
[0039]
As described above, when the one-time password is generated based on the detection result of the sensor 11a, the transmission unit 16 generates and transmits the object connection data, thereby connecting the object based on the detection result of the sensor 11a. Send data.
[0040]
The housing unit 17 is a housing that houses the counter 12, the encryption key storage unit 13, the OTP generation unit 14, the unique ID storage unit 15, and the transmission unit 16. It is preferable that the housing unit 17 has a structure in which an internal operation cannot be easily observed from the outside of the housing unit 17 and the inside of the housing unit 17 cannot be modified.
[0041]
The ID transmission device 1b includes a main body 10b and a sensor 11b. The ID transmission device 1c includes a main body 10c and a sensor 11c. The main body portions 10b and 10c store the unique ID of the object of each ID transmission device 1b and 1c and the encryption key of each ID transmission device 1b and 1c, and generate and transmit the object connection data of each ID transmission device 1b and 1c. Except for this, it is the same as the main body 10a. That is, the main body units 10 b and 10 c also include a counter 12, an encryption key storage unit 13, an OTP generation unit 14, a unique ID storage unit 15, a transmission unit 16, and a housing unit 17. The sensors 11b and 11c are the same as the sensor 11a except for detecting the status of the object of each ID transmission device 1b and 1c.
[0042]
Hereinafter, in the present embodiment, as illustrated in FIG. 2, the unique IDs stored in the unique ID transmission devices 1 a to 1 c are represented as unique IDa, unique IDb, and unique IDc, respectively. The encryption keys stored in the unique ID transmission devices 1a to 1c are represented as an encryption key a, an encryption key b, and an encryption key c, respectively. The counter values of the unique ID transmitters 1a to 1c are represented as CNTta, CNTtb, and CNTtc, respectively. Also, the thing one-time passwords generated by the unique ID transmission devices 1a to 1c are represented as a one-time password a, a one-time password b, and a one-time password c, respectively. Specifically, the one-time password a is fa (CNTta) obtained by assigning the encryption key a and CNTta to the algorithm. The one-time password b is fb (CNTtb) obtained by assigning the encryption key b and CNTtb to the algorithm. The one-time password c is fc (CNTtc) obtained by assigning the encryption key c and CNTtc to the algorithm.
[0043]
Further, the object connection data generated and transmitted by the unique ID transmission devices 1a to 1c are represented as connection data (a), connection data (b), and connection data (c), respectively. For example, as shown in FIG. 1, the transmitting unit 16 of the ID transmitting device 1a generates and transmits concatenated data (a) 18a obtained by connecting the unique IDa and the one-time password a. The transmitting unit 16 transmits concatenated data (a) 18a in a format in which the one-time password a is concatenated after the unique IDa. Similarly, the ID transmission device 1b generates and transmits concatenated data (b) in which the unique IDb and the one-time password b are concatenated. The ID transmission device 1c generates and transmits concatenated data (c) obtained by concatenating the unique IDc and the one-time password c.
[0044]
The digital cellular phone 2 is a mobile terminal that receives the object connection data from the ID transmission devices 1 a to 1 c and transmits it to the authentication server 4. The user has the digital cellular phone 2. The digital mobile phone 2 includes a reading device 21 and a main body 23. The main body unit 24 includes a communication unit 22 and a control unit 23. The reading device 21 is a receiving unit that receives the object connection data obtained by connecting the object identification data given to the object and the object one-time password. The reading device 21 receives the object connection data wirelessly. The reading device 21 is connected to the ID transmission devices 1a to 1c via radio and receives the object connection data via radio. For example, the reading device 21 receives object connection data transmitted using radio waves and infrared rays. Specifically, IrDA, Bluetooth (registered trademark), a wireless tag reader, or the like can be used as the reading device 21. The reading device 21 only needs to be able to receive the object connection data from the ID transmission devices 1a to 1c wirelessly at a short distance.
[0045]
For example, when a user having the digital mobile phone 2 approaches an object of the ID transmission device 1a, the sensor 11a detects the situation. Then, the ID transmission device 1a transmits the connection data (a) 18a, and the reading device 21 receives the connection data (a) 18a. The reading device 21 inputs the received object connection data to the control unit 23. The reading device 21 may be integrated with the main body 24 or may be detachable from the main body 24.
[0046]
The main body 24 has various functions of the digital mobile phone 2. The control unit 23 controls the digital mobile phone 2. The control unit 23 acquires the object connection data from the reading device 21 and inputs it to the communication unit 22. The communication unit 22 is connected to the digital cellular phone network 3 by radio. The digital cellular phone network 3 is one of mobile communication networks. The communication unit 22 connects to the authentication server 4 and the application execution server 5 via the digital cellular phone network 3. The communication unit 22 transmits / receives data to / from the authentication server 4 and the application execution server 5 via the digital mobile phone network 3. Since data transmission / reception between the digital mobile phone 2 and the authentication server 4 or the application execution server 5 is performed via the digital mobile phone network 3, the digital mobile phone 2, the authentication server 4 or the application execution server 5 Data can be sent and received regardless of the distance.
[0047]
The communication unit 22 functions as a transmission unit that transmits the object connection data received by the reading device 21 to the authentication server 4 via the mobile communication network. Specifically, when the reading device 21 receives the object connection data and acquires the object connection data from the control unit 22, the communication unit 22 receives the address of the authentication server 4 such as a URL address via the digital mobile phone network 3. Or call to the telephone number of the authentication server 4. The communication unit 22 can automatically access or make a call when acquiring the object connection data by setting the address and telephone number of the authentication server 4 in advance. Then, the communication unit 22 transmits the object connection data received by the reading device 21 to the authentication server 4 via the digital cellular phone network 3. After successful authentication, the communication unit 22 connects to the application execution server 5 to be accessed by the digital mobile phone 2 via the digital mobile phone network 3 and transmits / receives data.
[0048]
The authentication server 4 receives the object connection data transmitted by the ID transmission devices 1a to 1c from the mobile terminal that has received the object connection data via the mobile communication network, and receives the object identification data included in the received object connection data. Authenticate based on the one-time password connected to the object identification data. That is, the authentication server 4 receives the notification of the object connection data from the mobile terminal and determines the authenticity of the object identification data included therein. The authentication server 4 is connected to the digital cellular phone network 3.
[0049]
The authentication server 4 includes a unique ID / OTP reception unit 41, a unique ID / encryption key / counter value storage table 42, a unique ID existence determination unit 43, an OTP generation unit 44, a determination unit 45, and a result output unit 46. With. The unique ID / OTP receiver 41 is a receiving unit that receives the object connection data obtained by connecting the object identification data attached to the object and the object one-time password from the mobile terminal via the mobile communication network. The unique ID / OTP receiver 41 receives the object connection data from the digital mobile phone 2 via the digital mobile phone network 3. The unique ID / OTP receiving unit 41 inputs the received object connection data to the unique ID existence determination unit 43.
[0050]
The unique ID existence determination unit 43 determines whether or not the unique ID included in the object connection data actually exists. Specifically, the unique ID existence determination unit 43 stores in advance a unique ID that is actually assigned to an object. The unique ID existence determination unit 43 acquires the object connection data from the unique ID / OTP reception unit 41 and separates the acquired object connection data. The unique ID existence determination unit 43 compares the unique ID obtained by separation with the stored unique ID, and determines whether or not the unique ID included in the object connection data actually exists. The unique ID existence determination unit 43 determines that the unique ID actually exists when the unique ID obtained by separation matches any of the stored unique IDs. Then, the unique ID existence determination unit 43 inputs the unique ID included in the object connection data to the unique ID / encryption key / counter value storage table 42, and is included in the object connection data to the determination unit 45. Enter the one-time password.
[0051]
On the other hand, the unique ID existence determination unit 43 determines that the unique ID does not exist when the unique ID obtained by separation does not match any of the stored unique IDs. If the unique ID does not exist, the authenticity of the unique ID cannot be confirmed, and the unique ID existence determination unit 43 determines that the unique ID is “authentication failure”. The unique ID existence determination unit 43 outputs an authentication result “authentication failure” to the result output unit 46.
[0052]
The unique ID / encryption key / counter value storage table 42 stores unique IDs, encryption keys, and counter values stored in the ID transmission devices 1a to 1c. As shown in FIG. 2, the unique ID / encryption key / counter value storage table 42 stores the unique ID in association with the encryption key and the counter value. The counter values of the ID transmission devices 1a to 1c stored in the authentication server 4 are represented as CNTsa, CNTsb, and CNTsc. As described above, the unique IDs, encryption keys, and counter values of the ID transmission devices 1a to 1c need to be registered in the authentication server 4.
[0053]
The unique ID / encryption key / counter value storage table 42 specifies an encryption key and a counter value corresponding to the unique ID acquired from the unique ID existence determination unit 43 and inputs them to the OTP generation unit 44. As shown in FIG. 2, the unique ID / encryption key / counter value storage table 42 stores the unique IDa from the unique ID existence determination unit 43 in association with the unique IDa when the unique IDa is obtained from the ID transmitting device 1a. The encryption key a and CNTsa that are being used are input to the OTP generation unit 44. The unique ID / encryption key / counter value storage table 42, when acquiring the unique IDb from the ID transmitting device 1b from the unique ID existence determination unit 43, stores the encryption key b stored in association with the unique IDb, CNTsb is input to the OTP generation unit 44. The unique ID / encryption key / counter value storage table 42 stores the encryption key c stored in association with the unique IDc when the unique ID c from the ID transmission device 1c is acquired from the unique ID existence determination unit 43. CNTsc is input to the OTP generation unit 44.
[0054]
At this time, the unique ID / encryption key / counter value storage table 42 may input only the current counter value stored, and the current counter value and the counter value generated by advancing the current counter value. May also be entered. For example, the unique ID / encryption key / counter value storage table 42 sequentially advances the current counter value to generate and input a total of M counter values (M is a natural number) including the current counter value. Good.
[0055]
The OTP generation unit 44 generates a one-time password used for authentication (hereinafter referred to as “authentication server one-time password”). The OTP generation unit 44 of the authentication server 4 that is the authentication side generates an authentication server one-time password by using a method similar to that of the ID transmission devices 1a to 1c that are the authenticated side. In other words, the OTP generation unit 44 of the authentication server 4 on the authentication side uses the algorithm, encryption key, and counter value used by the OTP generation unit 14 of the ID transmission devices 1a to 1c on the authentication side to obtain the authentication server one-time password. Generate. Specifically, the OTP generation unit 44 acquires the encryption key and counter value corresponding to the unique ID from the unique ID / encryption key / counter value storage table 42. The OTP generation unit 44 assigns the obtained encryption key and counter value as parameters to the algorithm used by the OTP generation unit 14 for encryption. This encryption result becomes the authentication server one-time password.
[0056]
When acquiring the M counter values from the unique ID / encryption key / counter value storage table 42, the OTP generation unit 44 substitutes each of the M counter values into the algorithm, and M authentication server one time Generate a password. When only the current counter value is acquired from the unique ID / encryption key / counter value storage table 42, the OTP generation unit 44 sequentially advances the acquired current counter value to obtain the M counter values. Generate the rest. Then, the OTP generation unit 44 assigns M counter values obtained by adding the acquired current counter value and the counter value generated by itself to the algorithm, and generates M authentication server one-time passwords.
[0057]
FIG. 2 shows an authentication server one-time password 47 generated by the OTP generation unit 44. When the OTP generation unit 44 acquires M counter values including the encryption key a and the counter value CNTsa from the unique ID / encryption key / counter value storage table 42, the algorithm used by the ID transmission device 1a To generate M authentication server one-time passwords, fa (CNTsa), fa (CNTsa + 1),... Fa (CNTsa + M). When the OTP generation unit 44 acquires M counter values including the encryption key b and the counter value CNTsb from the unique ID / encryption key / counter value storage table 42, the algorithm used by the ID transmission device 1b To generate M authentication server one-time passwords, fb (CNTsb), fb (CNTsb + 1),... Fb (CNTsb + M). When the OTP generation unit 44 acquires M counter values including the encryption key c and the counter value CNTsc from the unique ID / encryption key / counter value storage table 42, the algorithm used by the ID transmission device 1c To generate M authentication server one-time passwords, fc (CNTsc), fc (CNTsc + 1),... Fa (CNTsc + M).
[0058]
The determination unit 45 is an object identification data authentication unit that authenticates the object identification data included in the received object connection data based on the object one-time password connected to the object identification data. The determination unit 45 acquires the thing one-time password included in the object connection data from the unique ID existence determination part 43. The determination unit 45 acquires M authentication server one-time passwords from the OTP generation unit 44. The determination unit 45 compares the object one-time password with the M authentication server one-time passwords. When the thing one-time password matches any of the M authentication server one-time passwords, the determination unit 45 determines that the unique ID linked to the thing one-time password is authentic.
[0059]
In this case, the determination unit 45 determines that the unique ID is “authentication successful”. The determination unit 45 outputs to the result output unit 46 the authentication result “authentication success”, the unique ID linked to the authentic one-time password determined to be authentic, and the counter value corresponding to the unique ID. . Further, the determination unit 45 notifies the application execution server 5 of the unique ID linked to the one-time password and the counter value corresponding to the unique ID. In this way, the determination unit 45 permits the digital mobile phone 2 to access the application execution server 5 to be accessed. Further, the determination unit 45 advances and updates the counter value stored in the unique ID / encryption key / counter value storage table 42 to the counter value used for generating the authentication server one-time password that matches the one-time password.
[0060]
On the other hand, if the thing one-time password does not match any of the M authentication server one-time passwords, the determination unit 45 cannot confirm the authenticity of the unique ID linked to the one-time password. The unique ID is “authentication failure”. The determination unit 45 outputs an authentication result “authentication failure” to the result output unit 46.
[0061]
In this manner, the determination unit 45 authenticates the unique ID by comparing the one-time password generated by the authenticated side with the authentication server one-time password generated by the authenticating side. Specifically, the determination unit 45 authenticates the unique ID according to the unique ID authentication logic 48 shown in FIG. If the determination unit 45 matches fn (CNTtn), which is a one-time password, and any one of M authentication server one-time passwords, fn (CNTsn), fn (CNTsn + 1),... Fn (CNTsn + M) The authentication is determined to be successful. The determination unit 45 determines that fn (CNTtn), which is an object one-time password, does not match any of M authentication server one-time passwords, fn (CNTsn), fn (CNTsn + 1),... Fn (CNTsn + M) Is determined to be an authentication failure.
[0062]
The result output unit 46 is an output unit that outputs an authentication result. The result output unit 46 outputs authentication results such as “authentication success” and “authentication failure”. Further, when the authentication is successful, the result output unit 46 also outputs the unique ID linked to the one-time password and the counter value corresponding to the unique ID. As the result output unit 46, for example, a display device that outputs the result as characters or images, a speaker that outputs the result as sound, or the like can be used.
[0063]
The application execution server 5 executes the application based on the authentication result of the authentication server 4. The application execution server 5 is connected to the authentication server 4. The application execution server 5 is connected to the digital cellular phone network 3 and transmits / receives data to / from the digital cellular phone 2 via the digital cellular phone network 3. When the authentication result by the authentication server 4 is authentication success, the application execution server 5 acquires from the authentication server 4 the unique ID linked to the object one-time password and the counter value corresponding to the unique ID. Then, the application execution server 5 executes the application and provides a service linked to the acquired unique ID to the digital cellular phone 2 that has transmitted the object connection data including the unique ID. The application execution server 5 does not execute the application when the authentication result by the authentication server 4 is an authentication failure and the unique ID cannot be acquired from the authentication server 4.
[0064]
〔Communication method〕
FIG. 3 shows an operation procedure of the ID transmitter. When the sensors 11a to 11c detect the situation of the object and input the detection result to the counter 12 (S101), the counter 12 advances the counter value by one based on the detection result, and sends the counter value to the OTP generation unit 14. Input (S102). In step (S101), while the sensors 11a to 11c do not input the detection result to the counter 12, the counter 12 stands by until there is an input.
[0065]
When receiving the input of the counter value, the OTP generation unit 14 acquires the encryption key from the encryption key storage unit 13. The OTP generation unit 14 substitutes the acquired counter value and encryption key as parameters into the algorithm for encryption (S103). The OTP generation unit 14 inputs the encryption result as a one-time password to the transmission unit 16 (S104). When receiving the one-time password, the transmitting unit 16 acquires a unique ID from the unique ID storage unit 15. The transmission unit 16 concatenates the acquired unique ID and the inputted thing one-time password, and generates article connection data. The transmitting unit 16 transmits the generated object connection data to the outside wirelessly (S105).
[0066]
The reading device 21 of the digital cellular phone 2 receives the object connection data transmitted from the unique ID transmitting devices 1a to 1c by the above procedure. The digital mobile phone 2 accesses the address of the authentication server 4 or makes a call to the telephone number of the authentication server 4 and connects to the authentication server 4 via the digital mobile phone network 3.
[0067]
Next, FIG. 4 shows an operation procedure of the authentication server. The digital cell phone 2 is notified of the object link data in which the object identification data and the object one-time password are linked via the digital cell phone network 3, and the unique ID / OTP receiving unit 41 receives the link data. The object connection data is input to the unique ID existence determination unit 43 (S201). In step (S201), the authentication server 4 stands by until receiving the notification while not receiving the notification of the object connection data.
[0068]
The unique ID existence determination unit 43 determines whether or not the unique ID included in the object connection data actually exists (S202). When the unique ID existence determination unit 43 determines that the unique ID is actually present, the unique ID existence determination unit 43 inputs the unique ID included in the object connection data into the unique ID / encryption key / counter value storage table 42, and enters the determination unit 45. Enter the thing one-time password included in the goods connection data. Then, the unique ID / encryption key / counter value storage table 42 identifies an encryption key and a counter value corresponding to the unique ID acquired from the unique ID existence determination unit 43 (S203).
[0069]
Further, the unique ID / encryption key / counter value storage table 42 sequentially advances the identified current counter value to generate a total of M counter values including the current counter value. Then, the unique ID / encryption key / counter value storage table 42 inputs the encryption key corresponding to the unique ID and M counter values to the OTP generation unit 44 (S204).
[0070]
On the other hand, in step (S <b> 202), when the unique ID existence determination unit 43 determines that the unique ID does not exist, it determines that the unique ID is “authentication failure”. The unique ID existence determination unit 43 outputs an authentication result “authentication failure” to the result output unit 46 (S208).
[0071]
Subsequent to step (S204), the OTP generation unit 44 uses the encryption key corresponding to the unique ID acquired from the unique ID / encryption key / counter value storage table 42 and the M counter values as parameters, and the ID transmission devices 1a to 1c. Are substituted into the algorithm used by the OTP generation unit 14 and encrypted for each of the M counter values. In this way, the OTP generation unit 44 generates M authentication server one-time passwords and inputs them to the determination unit 45 (S205).
[0072]
The determination unit 45 compares the thing one-time password from the digital cellular phone 2 acquired from the unique ID existence determination unit 43 and the M authentication server one-time passwords acquired from the OTP generation unit 44 (S206). When the thing one-time password matches any of the M authentication server one-time passwords, the determination unit 45 determines that the unique ID linked to the thing one-time password is authentic, and the unique ID “ “Authentication successful”. Then, the determination unit 45 outputs an authentication result “successful authentication”, a unique ID linked to the one-time password, and a counter value corresponding to the unique ID to the result output unit 46. The determination unit 45 notifies the application execution server 5 of the unique ID linked to the one-time password and the counter value corresponding to the unique ID, and accesses the application execution server 5 of the digital cellular phone 2. Allow. Further, the determination unit 45 uses the counter value stored in the unique ID / encryption key / counter value storage table 42 as the counter value used to generate the authentication server one-time password that matches the one-time password, that is, the authentication is successful. The process proceeds to the counter value corresponding to the authentication server one-time password (S207).
[0073]
On the other hand, in step (S206), when the thing one-time password does not match any of the M authentication server one-time passwords, the determination unit 45 determines that the authentication ID is “authentication failure”. Then, the determination unit 45 outputs an authentication result “authentication failure” to the result output unit 46 (S208).
[0074]
〔effect〕
According to such a communication system, ID transmitters 1a to 1c, digital mobile phone 2, authentication server 4, and communication method, the following effects can be obtained. The ID transmitters 1a to 1c can transmit by connecting the one-time password to the unique ID. Moreover, the ID transmitters 1a to 1c include sensors 11a to 11c that detect the status of the object, and the transmitter 16 can transmit the object connection data based on the detection results of the sensors 11a to 11c. Therefore, when ID detection devices 1a to 1c receive detection results from sensors 11a to 11c, the ID transmission devices 1a to 1c transmit the object connection data in conjunction with the situation of the object to which the unique ID is assigned, triggered by the detection results. be able to.
[0075]
Then, the reading device 21 of the digital mobile phone 2 can receive the object connection data in which the unique ID and the object one-time password are connected, and can transmit it to the authentication server 4 via the digital mobile phone network 3. Further, the authentication server 4 receives the object connection data obtained by connecting the unique ID and the object one-time password from the digital mobile phone 2 via the digital mobile phone network 3, and connects the unique ID included in the object connection data to the connection. Authentication can be performed based on the one-time password.
[0076]
Therefore, the unique ID can be authenticated and verified based on the linked one-time password. Moreover, since the one-time password is an effective one-time password for only one authentication, it cannot be used even if it is wiretapped. Therefore, the authentication server 4 can easily determine the authenticity of the unique ID, and can easily detect eavesdropping, forgery, and falsification of the unique ID. For example, while the unique ID is wirelessly transmitted from the ID transmitters 1a to 1c to the digital mobile phone 2 or while being transmitted from the digital mobile phone 2 to the authentication server 4 via the digital mobile phone network 3, eavesdropping is performed. Even if the digital cellular phone 2 itself has been falsified or falsified, the authentication server 4 can easily detect wiretapping, falsification, or falsification of such a unique ID. Therefore, it is possible to reduce a risk that a service using the notified unique ID and an operation based on the unique ID are erroneously performed.
[0077]
Further, the digital mobile phone 2 transmits the object connection data to the authentication server 4 via the digital mobile phone network 3, and the authentication server 4 sends the object connection data from the digital mobile phone 2 via the digital mobile phone network 3. Receive. That is, a general-purpose communication device such as a digital cellular phone 2 possessed by a person other than the operator who issues and manages the unique ID as a relay means to the authentication server 4 for the object connection data transmitted from the ID transmission devices 1a to 1c. Can be used. Therefore, there is no need to wire a wired communication line as in a management system using an ID card and a card reader, and there is no need to use a card reader under the management of the operator. Therefore, security can be easily improved at low cost.
[0078]
[Second Embodiment]
[Entry / exit management system]
As shown in FIG. 5, the entrance / exit management system includes a plurality of sensors 111a to 111c, a plurality of authentication devices 101a to 101c, a plurality of electric locks 106a to 106c, a plurality of digital mobile phones 102a to 102c, A mobile phone network 3 and a central control device 104 are provided.
[0079]
Each of the sensors 111a to 111c and each of the authentication devices 101a to 101c function as a transmitting device that connects the object identification data and the object one-time password to be connected to the object identification data and transmits the connected object connection data. The sensors 111a to 111c, the authentication devices 101a to 101c, and the electric locks 106a to 106c are attached to the doors 107a to 107c, respectively. The doors 107a to 107c are given unique door addresses to the doors 107a to 107c as object identification data. It is preferable that the door address indicates not only the door but also the position information of the door. The doors 107a to 107c are objects of the sensors 111a to 111c and the authentication devices 101a to 101c.
[0080]
The sensors 111a to 111c are detection means for detecting the state of the object. Each sensor 111a to 111c senses and detects that a person has approached each door 107a to 107c using infrared rays or radio waves. Each sensor 111a-111c inputs a detection result into authentication device 101a-101c, respectively. As shown in FIG. 5, when the sensors 111a to 111c and the authentication devices 101a to 101c are provided apart from each other, the sensors 111a to 111c and the authentication devices 101a to 101c are connected by wire or wirelessly. And each sensor 111a-111c transmits a detection result to each authentication apparatus 101a-101c wirelessly, or transmits via a wire. Each sensor 111a to 111c inputs a detection result to each authentication device 101a to 101c only when it detects that a person has approached.
[0081]
The electric locks 106a to 106c are traffic control means for controlling the opening and closing of the doors 107a to 107c. Each electric lock 106a-106c is electrically connected with each authentication apparatus 101a-101c. The electric locks 106a to 106c are unlocked when receiving an unlocking instruction from the authentication devices 101a to 101c. The electric locks 106a to 106c are locked when a predetermined time has elapsed after unlocking. The electric locks 106a to 106c are not unlocked unless an unlocking instruction is received from the authentication devices 101a to 101c.
[0082]
As shown in FIG. 6, the authentication apparatus 101a includes a counter 112, an encryption key storage unit 113, an OTP generation unit 114a, an OTP generation unit 114b, a door address storage unit 115, a transmission unit 116, and an OTP storage unit. 117, a determination unit 118, and a reception unit 119.
[0083]
The counter 112 inputs a counter value used for generation of the thing one-time password to the OTP generation unit 114a. The counter 112 operates only when an operation instruction is received from the receiving unit 119. When the detection result is input from the sensor 111a and the operation instruction is received from the reception unit 119, the counter 112 advances the counter value by one and inputs the advanced counter value to the OTP generation unit 114a. The counter 112 does not advance the counter value or input it to the OTP generation unit 114a only by the input from the sensor 111a.
[0084]
The encryption key storage unit 113 is an encryption key storage unit that stores the first encryption key. The OTP generation unit 114a is an object one-time password generation unit that generates an object one-time password to be linked to the object identification data. Hereinafter, in this embodiment, the thing one-time password is referred to as a “first one-time password”. The OTP generation unit 114a acquires the counter value from the counter 112. When receiving the input of the counter value, the OTP generation unit 114a acquires the first encryption key from the encryption key storage unit 113. The OTP generation unit 114a uses the acquired first encryption key and counter value as parameters and substitutes them into the algorithm for encryption. This encryption result becomes the first one-time password. The OTP generation unit 114a inputs the generated first one-time password to the transmission unit 116 and the OTP generation unit 114b.
[0085]
The OTP generation unit 114b generates a result one-time password that authenticates the result of user authentication using the object one-time password when the user of the mobile terminal that has received the object connection data receives user authentication. Time password generation means. Hereinafter, in the present embodiment, the result one-time password is referred to as a “second one-time password”. The OTP generation unit 114b can generate the second one-time password using the counter synchronization method.
[0086]
The OTP generation unit 114b generates a second one-time password using the first one-time password. The OTP generation unit 114b generates a one-time password using an algorithm. Specifically, the OTP generation unit 114b acquires the first one-time password from the OTP generation unit 114a. When receiving the input of the first one-time password, the OTP generation unit 114 acquires the first encryption key from the encryption key storage unit 113. The OTP generation unit 114a uses the first one-time password itself as a counter value.
[0087]
The OTP generating unit 114a uses the acquired first encryption key and the first one-time password as parameters and encrypts them by substituting them into the algorithm. This encryption result becomes the second one-time password. As described above, the first encryption key is used to generate the first one-time password and the second one-time password. For example, a one-way function such as a hash function can be used as the algorithm. The OTP generation unit 114a stores the generated second one-time password in the OTP storage unit 117. The OTP storage unit 117 stores the second one-time password.
[0088]
The door address storage unit 115 is an object identification data storage unit that stores object identification data assigned to an object. The door address storage unit 115 stores the door address assigned to the door 107a. The transmitting unit 116 is a transmitting unit that connects the object identification data and the object one-time password and transmits the connected object connection data. The transmitter 116 transmits the object connection data based on the detection result by the sensor 111a. Specifically, the transmission unit 116 acquires the first one-time password from the OTP generation unit 114a. When receiving the input of the first one-time password, the transmitting unit 116 acquires the door address from the door address storage unit 115. The transmitting unit 116 connects the acquired door address and the acquired first one-time password to generate and transmit the object connection data. Except for this point, the transmitter 116 is substantially the same as the transmitter 16 shown in FIG.
[0089]
The receiving unit 119 wirelessly receives signals from the digital mobile phones 102a to 102c. As a result, the authentication apparatus 101a can perform two-way wireless communication with the digital mobile phones 102a to 102c. The receiving unit 119 connects to the digital mobile phones 102a to 102c via wireless. For example, the receiving unit 119 receives a signal transmitted using radio waves and infrared rays. Specifically, as the receiving unit 119, IrDA, Bluetooth (registered trademark), a wireless tag reader, or the like can be used. The receiving unit 119 only needs to be able to receive signals from the digital mobile phones 102a to 102c wirelessly at a short distance.
[0090]
The receiving unit 119 receives an activation signal for operating the counter 112 from the digital mobile phones 102a to 102c. When receiving the activation signal, the reception unit 119 instructs the counter 112 to operate. The receiving unit 119 also functions as a receiving unit that receives authentication result information indicating a result of user authentication from the mobile terminal when the user of the mobile terminal that has received the object connection data receives user authentication. The receiving unit 119 receives from the digital mobile phones 102a to 102c, as authentication result information, passage permission information that permits passage of the door 107a and passage prohibition information that does not permit passage of the door 107a. The reception unit 119 inputs authentication result information to the determination unit 118. According to this, even if the user transmits data to the central control device 104 at a place away from the door 107a and is authenticated, the authentication result information from the digital cellular phones 102a to 102c to the receiving unit 119 is obtained. Since the wireless transmission cannot be performed, the electric lock 106a is not unlocked. Therefore, the security of the entrance / exit management system can be improved.
[0091]
The determination unit 118 is a result authentication unit that authenticates the received authentication result information based on the result one-time password. The determination unit 118 is electrically connected to the electric lock 106a. The determination unit 118 acquires the passage permission information or the passage non-permission information as authentication result information indicating the result of user authentication from the reception unit 119. When the determination unit 118 acquires the authentication result information from the reception unit 119, the determination unit 118 acquires the second one-time password from the OTP storage unit 117. The determination unit 118 authenticates the authentication result information by comparing the acquired authentication result information with the second one-time password.
[0092]
If the two match, the determination unit 118 determines that it is genuine passage permission information and that the user is permitted to pass. In this case, the determination unit 118 instructs the electric lock 106a to unlock. On the other hand, when the two do not match, the determination unit 118 determines that the information is not permitted to pass or is not genuine pass permission information, and determines that the user is not permitted to pass. In this case, the determination unit 118 does not issue an unlocking instruction. Furthermore, the determination unit 118 notifies the user that the passage is not permitted. For example, the determination unit 118 performs notification using auditory information such as sound, visual information such as character display and lamp lighting. In the present embodiment, the determination unit 118 sounds an alarm sound.
[0093]
The authentication devices 101b and 101c shown in FIG. 5 store the door addresses of the doors 107b and 107c and the first encryption key of the authentication devices 101b and 101c, respectively, and generate and transmit the object connection data of the authentication devices 101b and 101c. In this respect, the authentication apparatus 101a is the same as the authentication apparatus 101a except that the result of user authentication is authenticated and the unlocking of the electric locks 106b and 106c is controlled. That is, the authentication devices 101b and 101c also include a counter 112, an encryption key storage unit 113, an OTP generation unit 114a, an OTP generation unit 114b, a door address storage unit 115, a transmission unit 116, an OTP storage unit 117, The determination unit 118 and the reception unit 119 are provided.
[0094]
Hereinafter, in the present embodiment, as illustrated in FIG. 7, the door addresses stored in the authentication devices 101a to 101c are represented as a door address a, a door address b, and a door address c, respectively. The first encryption keys stored in the authentication devices 101a to 101c are represented as encryption key a, encryption key b, and encryption key c, respectively. The counter values of the counters 112 of the authentication devices 101a to 101c are represented as CNTta, CNTtb, and CNTtc, respectively. In addition, the first one-time passwords generated by the authentication devices 101a to 101c are represented as a first one-time password a, a first one-time password b, and a first one-time password c, respectively. Specifically, the first one-time password a is fa (CNTta) obtained by assigning the first encryption key a and CNTta to the algorithm. The first one-time password b is fb (CNTtb) obtained by assigning the first encryption key b and CNTtb to the algorithm. The first one-time password c is fc (CNTtc) obtained by substituting the first encryption key c and CNTtc into the algorithm.
[0095]
Further, the object connection data generated and transmitted by the authentication devices 101a to 101c are expressed as connection data (a), connection data (b), and connection data (c), respectively. For example, as shown in FIG. 5, the transmitting unit 116 of the authentication device 101 a generates and transmits concatenated data (a) 118 a obtained by connecting the door address a and the first one-time password a. Further, the transmitting unit 116 of the authentication device 101b generates and transmits concatenated data (b) obtained by connecting the door address b and the first one-time password b. The transmitting unit 116 of the authentication device 101c generates and transmits concatenated data (c) obtained by connecting the door address c and the first one-time password c.
[0096]
Digital mobile phones 102 a to 102 c shown in FIG. 5 are mobile terminals that receive the object connection data from the authentication devices 101 a to 101 c and transmit them to the central control device 104. The user 105a has the digital cellular phone 102a. The user 105a is, for example, a person who is permitted to enter and exit a building or site and is permitted to pass through the door 107a. The digital cellular phone 102 a includes a transceiver 121 and a main body 128. The main body 128 includes a communication unit 122, a counter 123, an OTP generation unit 124, an encryption key storage unit 125, a user ID storage unit 126, and a control unit 127.
[0097]
The transceiver 121 transmits and receives signals to and from the authentication devices 101a to 101c wirelessly. As a result, the digital mobile phone 102a can perform two-way wireless communication with the authentication devices 101a to 101c. The transceiver 121 functions as a receiving unit that receives the object connection data obtained by connecting the object identification data attached to the object and the object one-time password. The transceiver 121 inputs the received object connection data to the control unit 127. Further, the transceiver 121 transmits an activation signal that activates the counter 112 of the authentication apparatuses 101a to 101c. When the transmitter / receiver 121 receives an instruction to transmit an activation signal from the control unit 127, the transceiver 121 transmits the activation signal. Furthermore, the transmitter / receiver 121 acquires authentication result information from the control unit 122 and transmits the authentication result information to the authentication apparatuses 101a to 101c.
[0098]
The transmitter / receiver 121 is connected to the authentication devices 101a to 101c via a wireless connection, receives the object connection data wirelessly, and transmits an activation signal and authentication result information wirelessly. For example, the transceiver 121 performs transmission / reception using radio waves and infrared rays. Specifically, IrDA, Bluetooth (registered trademark), or the like can be used as the transceiver 121. The transmitter / receiver 121 only needs to be able to transmit / receive to / from the authentication devices 101a to 101c wirelessly at a short distance. The transceiver 121 may be integrated with the main body 128 or may be detachable from the main body 128.
[0099]
The control unit 127 acquires the object connection data from the transceiver 121 and inputs it to the communication unit 122. In addition, the control unit 127 notifies the counter 123 of the reception of the object connection data. Further, the control unit 127 acquires authentication result information from the communication unit 122 and inputs the authentication result information to the transceiver 121. In addition, the control unit 127 instructs the transceiver 121 to transmit an activation signal. For example, the user 105a approaches the doors 107a to 107c and performs an activation signal transmission operation. And the control part 127 receives transmission operation from the user 105a, and instruct | indicates transmission of a starting signal.
[0100]
The user ID storage unit 126 is a user identification data storage unit that stores user identification data for identifying the user of the mobile terminal. The user ID storage unit 126 stores, as user identification data, a user ID that is given to the user 105a of the digital mobile phone 102a and can identify the user 105a. The user identification data is preferably data that can be identified by a plurality of networks. For example, data that can be identified not only on the digital cellular phone network 3 but also on the Internet is preferable.
[0101]
The counter 123 inputs a counter value used for generating a user one-time password to be linked to the user identification data to the OTP generation unit 124. The counter 123 stores a counter value. The counter 123 inputs, as a counter value, the number of times that the transceiver 121 has received the object connection data to the OTP generation unit 124. When the counter 123 receives the notification of the reception of the object connection data from the control unit 127, the counter 123 adds 1 to the stored counter value, advances the counter value by 1, and uses the advanced counter value as the OTP generation unit. Input to 124. The counter 123 stores the advanced counter value, that is, the total number of receptions.
[0102]
The encryption key storage unit 125 is an encryption key storage unit that stores the second encryption key. The second encryption key is used to generate a user one-time password. The second encryption key uniquely corresponds to the user ID. The OTP generation unit 124 is a user one-time password generation unit that generates a user one-time password to be linked to user identification data. Hereinafter, in the present embodiment, the user one-time password is referred to as a “third one-time password”. The OTP generation unit 124 can also generate the third one-time password using the counter synchronization method.
[0103]
The OTP generation unit 124 acquires, from the counter 123, the number of times the transceiver 121 has received the object connection data as a counter value. When receiving the counter value, the OTP generation unit 124 acquires the second encryption key from the encryption key storage unit 125. The OTP generation unit 124 uses the acquired second encryption key and counter value as parameters and substitutes them into the algorithm for encryption. This encryption result becomes the third one-time password. For example, a one-way function such as a hash function can be used as the algorithm. The OTP generation unit 124 inputs the generated third one-time password to the communication unit 122.
[0104]
The communication unit 122 is connected to the central control device 104 via the digital cellular phone network 3. The communication unit 122 transmits / receives data to / from the central control device 104 via the digital cellular phone network 3. Since data transmission / reception between the digital cellular phone 102a and the central control device 104 is performed via the digital cellular phone network 3, the data is transmitted regardless of the distance between the digital cellular phone 102a and the central control device 104. Can send and receive.
[0105]
The communication unit 122 connects the user identification data and the user one-time password, and transmits the connected user connection data and the object connection data received by the transceiver 121 to the central controller 104 via the mobile communication network. Function as. Specifically, the communication unit 122 acquires the object connection data from the control unit 127. In addition, the communication unit 122 acquires a third one-time password from the OTP generation unit 124. When receiving the input of the third one-time password, the communication unit 122 acquires the user ID from the user ID storage unit 126. The communication unit 122 connects the acquired user ID and the acquired third one-time password to generate user connection data. The communication unit 122 connects the generated user connection data and the acquired object connection data, and transmits them to the central control device 104 via the digital cellular phone network 3. Further, the communication unit 122 receives the authentication result information from the central control device 104 and inputs the received authentication result information to the control unit 127.
[0106]
The digital mobile phones 102b and 102c store the user IDs of the users of the digital mobile phones 102b and 102c and the second encryption keys of the digital mobile phones 102b and 102c, respectively, and generate user connection data for the digital mobile phones 102b and 102c. Except for the point of transmission, it is the same as the digital mobile phone 102a. That is, the digital cellular phones 102b and 102c also include a transmitter / receiver 121 and a main body 128. The main body 128 includes a communication unit 122, a counter 123, an OTP generation unit 124, an encryption key storage unit 125, A user ID storage unit 126 and a control unit 127 are provided.
[0107]
Such digital cellular phones 102a to 102c can be realized by a computer executing a user authentication software program. The user authentication software program includes a computer, a receiving unit that receives the object connection data, a user identification data storage unit that stores user identification data, an encryption key storage unit that stores a second encryption key, and a user one-time password. A user one-time password generating means for generating the user identification data and the user one-time password; It is a program for functioning as a transmission means for transmitting via the.
[0108]
The digital mobile phones 102a to 102c can obtain the user authentication software program by downloading the user authentication software program from the central control device 104 via the digital mobile phone network 3, for example. Then, the control unit 127 of the digital cellular phones 102a to 102c executes the user authentication software program.
[0109]
The digital mobile phones 102a to 102c are the user IDs stored in the user ID storage unit 126 or the second encryption stored in the encryption key storage unit 125 by a user or a third party of the digital mobile phones 102a to 102c. It is preferable that the key is configured not to be taken out or rewritten.
[0110]
Hereinafter, in this embodiment, as shown in FIG. 8, the user IDs stored in the digital mobile phones 102 a to 102 c are respectively the user IDs. _A , User ID _B , User ID _C It expresses. Each of the second encryption keys stored in the digital mobile phones 102a to 102c is an encryption key. _A , Encryption key _B , Encryption key _C It expresses. The counter value of the counter 123 of each of the digital mobile phones 102a to 102c is set to CNT _uA , CNT _uB , CNT _uC It expresses. Also, the third one-time passwords generated by the digital mobile phones 102a to 102c are respectively replaced with the third one-time passwords. _A , Third one-time password _B , Third one-time password _C It expresses. Specifically, the third one-time password _A The algorithm uses the second encryption key _A , CNT _uA F substituted with _A (CNT _uA ) Third one-time password _B The algorithm uses the second encryption key _B , CNT _uB F substituted with _B (CNT _uB ) Third one-time password _C The algorithm uses the second encryption key _C , CNT _uC F substituted with _C (CNT _uC )
[0111]
Further, the user connection data generated and transmitted by the digital mobile phones 102a to 102c are represented as connection data (A), connection data (B), and connection data (C), respectively. For example, when the connection data (a) 118a is received, the communication unit 122 of the digital mobile phone 102a receives the user ID as shown in FIG. _A And a third one-time password _A The connection data (A) 119a obtained by concatenating the data is generated, connected to the received connection data (a) 118a, and transmitted to the central controller 104. The communication unit 122 of the digital cellular phone 102b has a user ID _B And a third one-time password _B Is connected to the received connection data (a) and transmitted to the central control unit 104. The communication unit 122 of the digital cellular phone 102c has a user ID _C And a third one-time password _C Is connected to the received connection data (a) and transmitted to the central control unit 104.
[0112]
The central controller 104 controls the entire entrance / exit management system. The central control device 104 includes an integrated authentication server 141, a determination unit 142, and a storage unit 143. The integrated authentication server 141 receives the object connection data transmitted from the authentication devices 101a to 101c from the mobile terminal that has received the object connection data via the mobile communication network, and receives the object identification data included in the received object connection data. Authenticate based on the one-time password connected to the object identification data. The integrated authentication server 141 is connected to the digital cellular phone network 3. The integrated authentication server 141 includes a communication unit 141a, a determination unit 141b, a door address / encryption key / counter value storage table 141c, a user ID / encryption key / counter value storage table 141d, and an OTP generation unit 141e.
[0113]
The communication unit 141 a is connected to the digital mobile phone 2 via the digital mobile phone network 3. The communication unit 141a transmits and receives data to and from the digital mobile phone 2 via the digital mobile phone network 3. The communication unit 141a transmits the object connection data obtained by connecting the object identification data provided to the object and the object one-time password, and the user connection data obtained by connecting the user identification data and the user one-time password from the mobile terminal via the mobile communication network. Function as receiving means. The communication unit 141 a receives the connected object connection data and user connection data from the digital mobile phone 2 via the digital mobile phone network 3. The communication unit 141a inputs the received object connection data and user connection data to the determination unit 141b. In addition, the communication unit 141a acquires authentication result information associated with the user ID from the OTP generation unit 141e or the determination unit 141b, and transmits the authentication result information to the digital mobile phone 2 corresponding to the user ID.
[0114]
The door address / encryption key / counter value storage table 141c stores the door address, the first encryption key, and the counter value stored in the authentication devices 101a to 101c. As shown in FIG. 7, the door address / encryption key / counter value storage table 141c stores the first encryption key and the counter value in association with the door address. Note that the counter values of the authentication devices 101a to 101c stored in the integrated authentication server 141 are represented as CNTsa, CNTsb, and CNTsc. Thus, the door address, encryption key, and counter value of each of the authentication devices 101a to 101c need to be registered in the integrated authentication server 141.
[0115]
The user ID / encryption key / counter value storage table 141d stores the user ID, the second encryption key, and the counter value stored in the digital mobile phones 102a to 102c. As shown in FIG. 8, the user ID / encryption key / counter value storage table 141d stores the user ID in association with the second encryption key and the counter value. The counter value of the digital cellular phones 102a to 102c stored in the integrated authentication server 141 is CNT _sA , CNT _sB , CNT _sC It expresses. As described above, the user ID, the second encryption key, and the counter value of the users of the digital mobile phones 102 a to 102 c need to be registered in the integrated authentication server 141.
[0116]
The determination unit 141b functions as an object identification data authentication unit that authenticates the object identification data included in the received object connection data based on the object one-time password connected to the object identification data. Specifically, the determination unit 141b authenticates the door address included in the object connection data received from the digital mobile phones 102a to 102c based on the first one-time password connected to the door address.
[0117]
First, the determination unit 141b acquires the object connection data from the communication unit 141a. The determination unit 141b searches the door address / encryption key / counter value storage table 141c, and acquires the first encryption key and the current counter value corresponding to the door address included in the object connection data. As shown in FIG. 7, in the case of the linked data (a) including the door address a, the determination unit 141b stores the linked data from the door address / encryption key / counter value storage table 141c in association with the door address a. The encryption key a and CNTsa are acquired. In the case of concatenated data (b) including the door address b, the determination unit 141b obtains the encryption key b and CNTsb stored in association with the door address b from the door address / encryption key / counter value storage table 141c. get. In the case of the concatenated data (c) including the door address c, the determination unit 141b obtains the encryption key c and CNTsc stored in association with the door address c from the door address / encryption key / counter value storage table 141c. get.
[0118]
Next, the determination unit 141b generates a one-time password used for door address authentication (hereinafter referred to as “one-time password for door address authentication”). The determination unit 141b on the authentication side uses the same method as the method used by the authentication devices 101a to 101c on the authentication target side to generate the first one-time password connected to the door address. Generate a one-time password for authentication. That is, the determination unit 141b on the authentication side uses the algorithm, the first encryption key, and the counter value used by the OTP generation unit 114a of the authentication devices 101a to 101c on the authentication target side to generate the first one-time password, Generate a one-time password for door address authentication.
[0119]
Specifically, the determination unit 141b uses the first encryption key and the counter value as parameters and substitutes them into the algorithm used by the OTP generation unit 114a for encryption. This encryption result is a one-time password for door address authentication. At this time, the determination unit 141b sequentially advances the current counter value acquired from the door address / encryption key / counter value storage table 141c, and generates the remainder of the M counter values. Then, the determination unit 141b encrypts the acquired current counter value and the M counter values obtained by adding up the counter value generated by itself into the algorithm used by the OTP generation unit 114a, and encrypts them. Generate a one-time password for address authentication.
[0120]
FIG. 7 shows the door address authentication one-time password 141f generated by the determination unit 141b. When the determination unit 141b acquires the encryption key a and the counter value CNTsa from the door address / encryption key / counter value storage table 141c and generates M counter values, the authentication device 101a uses them as the first value. Substituting into the algorithm used to generate the one-time password, M one-time passwords for door address authentication, fa (CNTsa), fa (CNTsa + 1),... Fa (CNTsa + M) are generated. When the determination unit 141b obtains the encryption key b and the counter value CNTsb from the door address / encryption key / counter value storage table 141c and generates M counter values, the authentication device 101b uses them as the first value. Substituting into the algorithm used to generate the one-time password, M one-time passwords for door address authentication, fb (CNTsb), fb (CNTsb + 1),... Fb (CNTsb + M) are generated. When the determination unit 141b acquires the encryption key c and the counter value CNTsc from the door address / encryption key / counter value storage table 141c and generates M counter values, the authentication device 101c generates the first counter value. Substituting into the algorithm used for generating the one-time password, M one-time passwords for door address authentication, fc (CNTsc), fc (CNTsc + 1),... Fc (CNTsc + M) are generated.
[0121]
The determination unit 141b compares the first one-time password included in the received article connection data with the M door address authentication one-time passwords. If the first one-time password matches any of the M door address authentication one-time passwords, the determination unit 141b determines that the door address connected to the first one-time password is authentic. Judge that there is. In this case, the determination unit 141b determines that the door address is “authentication successful”. On the other hand, if the first one-time password does not match any of the M door address authentication one-time passwords, the determination unit 141b authenticates the authenticity of the door address linked to the first one-time password. Therefore, it is determined that the door address is “authentication failure”.
[0122]
As described above, the determination unit 141b authenticates the door address by comparing the first one-time password generated by the authenticated side with the one-time password for door address authentication generated by the authentication side. Specifically, the determination unit 141b authenticates the door address according to the door address authentication logic 141g shown in FIG. The determination unit 141b includes fn (CNTtn) that is the first one-time password, and fn (CNTsn), fn (CNTsn + 1),... Fn (CNTsn + M) that are M one-time passwords for door address authentication. If it matches, it is determined that the authentication is successful. The determination unit 141b determines that fn (CNTtn) as the first one-time password is any one of fn (CNTsn), fn (CNTsn + 1),... Fn (CNTsn + M) as one-time passwords for door address authentication. If they do not match, it is determined that the authentication has failed.
[0123]
The determination unit 141b also functions as a user identification data authenticating unit that authenticates user identification data included in the received user connection data based on a user one-time password connected to the user identification data. Specifically, the determination unit 141b authenticates the user ID included in the user connection data received from the digital mobile phones 102a to 102c based on the third one-time password connected to the user ID.
[0124]
First, the determination unit 141b acquires user connection data from the communication unit 141a. The determination unit 141b searches the user ID / encryption key / counter value storage table 141d to obtain the second encryption key corresponding to the user ID included in the user connection data and the current counter value. As illustrated in FIG. 8, the determination unit 141b includes a user ID _A In the case of concatenated data (A) including the user ID / encryption key / counter value storage table 141d, the user ID _A Encryption key stored in association with _A , CNT _sA To get. The determination unit 141b has a user ID _B In the case of concatenated data (C) including the user ID / encryption key / counter value storage table 141d, the user ID _B Encryption key stored in association with _B , CNT _sB To get. The determination unit 141b has a user ID _C In the case of concatenated data (C) including the user ID / encryption key / counter value storage table 141d, the user ID _C Encryption key stored in association with _C , CNT _sC To get.
[0125]
Next, the determination unit 141b generates a one-time password (hereinafter referred to as “one-time password for user ID authentication”) used for user ID authentication. The determination unit 141b on the authentication side uses the same method as the method used by the digital mobile phones 102a to 102c on the authenticated side to generate the third one-time password connected to the user ID. A one-time password for ID authentication is generated. That is, the determination unit 141b on the authentication side uses the algorithm, the second encryption key, and the counter value that the OTP generation unit 124 of the digital mobile phones 102a to 102c on the authentication side uses to generate the third one-time password. Then, a one-time password for user ID authentication is generated.
[0126]
Specifically, the determination unit 141b uses the second encryption key and the counter value as parameters and substitutes them into the algorithm used by the OTP generation unit 124 for encryption. This encryption result becomes a one-time password for user ID authentication. At this time, the determination unit 141b sequentially advances the current counter value acquired from the user ID / encryption key / counter value storage table 141d, and generates the remainder of the M counter values. Then, the determination unit 141b encrypts the acquired current counter value and the M counter values obtained by adding up the counter values generated by the determination unit 141b into the algorithm used by the OTP generation unit 124, respectively. A one-time password for ID authentication is generated.
[0127]
FIG. 8 shows a one-time password for user ID authentication 141h generated by the determination unit 141b. The determination unit 141b determines the encryption key from the user ID / encryption key / counter value storage table 141d. _A , Counter value CNT _sA , And M counter values are generated, they are substituted into the algorithm used by the digital mobile phone 102a to generate the third one-time password, and M user ID authentication one-time passwords, f _A (CNT _sA ), F _A (CNT _sA +1), ... f _sA (CNT _sA + M). The determination unit 141b determines the encryption key from the user ID / encryption key / counter value storage table 141d. _B , Counter value CNT _sB And M counter values are generated, the M counter values are substituted into the algorithm used by the digital mobile phone 102b to generate the third one-time password, and M user ID authentication one-time passwords, f _B (CNT _sB ), F _B (CNT _sB +1), ... f _B (CNT _sB + M). The determination unit 141b determines the encryption key from the user ID / encryption key / counter value storage table 141d. _C , Counter value CNT _sC , And M counter values are generated, they are substituted into the algorithm used by the digital mobile phone 102c to generate the third one-time password, and M user ID authentication one-time passwords, f _C (CNT _sC ), F _C (CNT _sC +1), ... f _C (CNT _sC + M).
[0128]
The determination unit 141b compares the third one-time password included in the received user connection data with the M user ID authentication one-time passwords. If the third one-time password matches any of the M user ID authentication one-time passwords, the determination unit 141b determines that the user ID linked to the third one-time password is authentic. Judge that there is. In this case, the determination unit 141b determines that the authentication is successful for the user ID. On the other hand, if the third one-time password does not match any of the M user ID authentication one-time passwords, the determination unit 141b authenticates the user ID connected to the third one-time password. Therefore, it is determined that the user ID is “authentication failure”.
[0129]
As described above, the determination unit 141b authenticates the user ID by comparing the third one-time password generated by the authenticated side with the one-time password for user ID authentication generated by the authenticating side. Specifically, the determination unit 141b authenticates the user ID according to the user ID authentication logic 141i illustrated in FIG. The determination unit 141b is a third one-time password f _N (CNT _uN ) And f one-time passwords for M user ID authentication _N (CNT _sN ), F _N (CNT _sN +1), ... f _N (CNT _sN + M), it is determined that the authentication is successful. The determination unit 141b is a third one-time password f _N (CNT _uN ) Is M one-time passwords for user ID authentication _N (CNT _sN ), F _N (CNT _sN +1), ... f _N (CNT _sN + M) is determined to be an authentication failure.
[0130]
When both the door address and the user ID are authentic, and the determination unit 141b determines that both are successful, the determination unit 141b authenticates the door address connected to the first one-time password determined to be authentic, and the authenticity The user ID linked to the third one-time password determined to be is input to the determination unit 142 and notified. Further, the determination unit 141b inputs the door address that has been successfully authenticated, the first one-time password linked to the door address, and the first encryption key corresponding to the door address to the OTP generation unit 141e. Further, the determination unit 141b advances the counter value stored in the door address / encryption key / counter value storage table 141c to the counter value used to generate the one-time password for door address authentication that matches the first one-time password. ,Update. Similarly, the determination unit 141b uses the counter value stored in the user ID / encryption key / counter value storage table 141d up to the counter value used to generate the one-time password for user ID authentication that matches the third one-time password. Advance and update.
[0131]
When the determination unit 141b determines that the authentication failure of either the door address or the user ID is unsuccessful, it cannot confirm that the user is a user permitted to pass through the door at that time. Therefore, the determination unit 141b determines that user authentication has failed. Then, the determination unit 141b inputs the traffic non-permission information as the authentication result information in association with the user ID to the communication unit 141a. In the present embodiment, the first one-time password included in the received object connection data is used as the traffic non-permission information.
[0132]
The OTP generation unit 141e generates authentication result information. The OTP generation unit 141e acquires a user authentication result associated with the door address and the user ID from the determination unit 142. Then, the OTP generation unit 141e generates authentication result information based on the acquired user authentication result. In addition, the OTP generation unit 141e acquires the door address that has been successfully authenticated, the first one-time password that is linked to the door address, and the first encryption key that corresponds to the door address from the determination unit 141b. In addition, the OTP generation unit 141e stores an algorithm used by the OTP generation unit 114b of the authentication apparatus that transmits the door address in association with the door address to generate the second one-time password.
[0133]
When the OTP generation unit 141e acquires from the determination unit 142 a result of successful user authentication, that is, permission of passage of the door, the OTP generation unit 141e generates passage permission information as authentication result information. Based on the door address associated with the user authentication result, the OTP generation unit 141e obtains the first one-time password and the first encryption key corresponding to the door address from the determination unit 141b. From the one-time password and the first encryption key. Further, the OTP generation unit 141e stores an algorithm used to generate a second one-time password corresponding to the door address based on the door address associated with the user authentication result. Identify from the existing algorithms.
[0134]
The OTP generation unit 141e uses the specified first one-time password as a counter value. The OTP generation unit 141e uses the specified first encryption key and the first one-time password that is the counter value as parameters, and encrypts them by specifying them in the specified algorithm. This encryption result is referred to as a fourth one-time password. In the present embodiment, the generated fourth one-time password is used as the passage permission information. The OTP generation unit 141e inputs the generated fourth one-time password to the communication unit 141a in association with the user ID as passage permission information.
[0135]
If the OTP generation unit 141e acquires from the determination unit 142 a result of user authentication failure, that is, a result that door passage is not permitted, the OTP generation unit 141e inputs passage prohibition information to the communication unit 141a as authentication result information. Based on the door address associated with the result of the user authentication, the OTP generation unit 141e obtains the first one-time password corresponding to the door address from the first one-time password acquired from the determination unit 141b. Identify from. The OTP generation unit 141e inputs the identified first one-time password as the traffic non-permission information in association with the user ID to the communication unit 141a. In the present embodiment, the first one-time password is used as the traffic non-permission information, but the OTP generation unit 141e may newly generate the traffic non-permission information.
[0136]
The determination unit 142 performs user authentication. In the present embodiment, the determination unit 142 authenticates whether the user is a user who is permitted to pass through the door or a user who is not permitted to pass through the door. The storage unit 143 stores a door address of a door that is permitted to pass for each user ID. That is, the storage unit 143 stores the door address of the door that is allowed to pass by the user who is given the user ID in association with the user ID.
[0137]
The determination unit 142 searches the storage unit 143, the user ID notified from the integrated authentication server 141 (hereinafter referred to as “reception user ID”), and the user ID stored in the storage unit 143 (hereinafter referred to as “registered user ID”). It is determined whether any of the above matches. When the received user ID matches any of the registered user IDs, the determining unit 142 acquires the door address of the door that is permitted to pass that is associated with the registered user ID from the storage unit 143. The determination unit 142 determines whether one of the door address notified from the integrated authentication server 141 and the door address acquired from the storage unit 143 matches. When the notified door address matches one of the door addresses acquired from the storage unit 143, the determining unit 143 indicates that the user with the received user ID is permitted to pass through the door with the door address. It is determined that Then, the determination unit 142 inputs, to the integrated authentication server 141, the result of user authentication that permits passage of the door in association with the user ID.
[0138]
On the other hand, when the received user ID does not match any of the registered user IDs or the received user ID matches any of the registered user IDs, the determination unit 142 determines that the door address notified from the integrated authentication server 141 is If it does not match any of the door addresses associated with the registered user ID and the user with the user ID is not allowed to pass through the door with the door address, the user with the receiving user ID It is determined that the user is not permitted to pass the door at the door address. Then, the determination unit 142 inputs, to the integrated authentication server 141, a result of user authentication that does not permit passage of the door in association with the user ID.
[0139]
The authentication logic of the authentication result information in such an entrance / exit management system is summarized as shown in FIG. For example, the authentication device 101 a transmits the connection data (a) obtained by connecting the first one-time password a and the door address a generated by the authentication device 101 a via the digital mobile phones 102 a to 102 c and the digital mobile phone network 3. The data is transmitted to the central controller 104 (201). The integrated authentication server 141 of the central control device 104 authenticates the door address, and when the door address authentication is successful (202), the determination unit 142 performs user authentication. When the user is permitted to pass through the door (204), the integrated authentication server 141 uses the fourth one-time password fa (fa (CNTta)) generated by using the first one-time password a as a counter value. As the passage permission information, the information is transmitted to the authentication device 101a via the digital portable telephone network 3 and the digital portable telephones 102a to 102c (205).
[0140]
On the other hand, if the authentication of the door address is unsuccessful (203), the authentication of the door address is successful, but if the user is not permitted to pass the door (206), the integrated authentication server 141 receives the first The one-time password a is transmitted to the authentication device 101a via the digital cellular phone network 3 and the digital cellular phones 102a to 102c as traffic non-permission information (207).
[0141]
The authentication device 101a transmits the concatenated data (a) to the central control device 104, generates a second one-time password fa (fa (CNTta)) using the first one-time password a as a counter value, and stores it. (208). The authentication device 101a authenticates the authentication result information by comparing the authentication result information received from the central control device 104 with the second one-time password. When the authentication device 101a receives the fourth one-time password as the authentication result information, the fourth one-time password matches the second one-time password, and therefore the user is permitted to pass. Judgment is successful. Then, the electric lock 106a is unlocked (209). On the other hand, when the authentication apparatus 101a receives the first one-time password as the authentication result information, the first one-time password and the second one-time password do not match, so that the user is permitted to pass. It is determined that there is no authentication, and authentication fails. An alarm is then sounded.
[0142]
〔Communication method〕
A communication method in the entrance / exit management system will be described by taking the authentication device 101a and the digital mobile phone 102a as examples. FIG. 10 shows a procedure from transmission of the connection data (a) by the authentication device 101a to transmission of the connection data (a) and user connection data (A) to the central control device 104 by the digital mobile phone 102a. Next, FIG. 11 shows a procedure from the authentication of the door address and the user user ID by the central control device 104 to the control of the unlocking of the door 106a by the authentication device 101a.
[0143]
As shown in FIG. 10, when a user 105a tries to enter a door 106a provided at the entrance of a building, first, the user 105a approaches the door 106a and performs a transmission operation of the digital mobile phone 102a. In response to the transmission operation of the user 105a, the digital mobile phone 102a transmits an activation signal to the authentication device 101a. Then, the authentication device 101a receives the activation signal and activates the counter 112 (S301). At the same time, the sensor 111a attached to the door 106a detects and detects that the user 105a has approached the door 107a, and inputs the detection result to the counter 112 (S302).
[0144]
Then, the counter 112 of the authentication apparatus 101a increments the counter value by one, and inputs the incremented counter value to the OTP generation unit 114a (S303). The OTP generation unit 114a uses the first encryption key and the counter value stored in the encryption key storage unit 113 as parameters and encrypts them by assigning them to the algorithm, and uses the encryption result as the first one-time password, The OTP generation unit 114b is input (S304).
[0145]
The transmitting unit 116 connects the door address stored in the door address storage unit 115 and the first one-time password input from the OTP generation unit 114a to generate the connection data (a), and transmits it to the outside. (S305). In addition, the OTP generation unit 114b uses the input first one-time password as a counter value. The OTP generation unit 114b assigns the first encryption key stored in the encryption key storage unit 113 and the input first one-time password as parameters to the algorithm, and encrypts the result. The time password is stored in the OTP storage unit 117. The OTP storage unit 117 stores the second one-time password (S306).
[0146]
In step (S301), the authentication device 101a waits until the activation signal is transmitted without operating the counter 112 while the activation signal is not received. In step (S302), while the sensor 111a does not sense that the user 105a has approached the door 107a and the detection result is not input to the counter 112, the counter 112 waits for an input.
[0147]
When the transmitter / receiver 121 of the digital mobile phone 102a possessed by the user 105a receives the connection data (a), the control unit 127 notifies the counter 123 of the reception of the connection data (a) (S307). In step (S307), the digital cellular phone 102a waits until it is transmitted while it does not receive the concatenated data (a).
[0148]
Upon receiving the concatenated data (a), the counter 123 in the digital cellular phone 102 a increments the counter value that is the number of receptions by one, and inputs the counter value that is the total number of receptions to the OTP generation unit 124. (S308). The OTP generation unit 124 assigns the second encryption key stored in the encryption key storage unit 125 in the digital mobile phone 102a and the counter value that is the total number of receptions as parameters to the algorithm, and encrypts the result. Is input to the communication unit 122 as a third one-time password (S309).
[0149]
The communication unit 122 concatenates the user ID stored in the user ID storage unit 126 in the digital mobile phone 102a and the input third one-time password, and generates concatenated data (A). The communication unit 122 connects the generated connection data (A) and the connection data (a) received by the transceiver 121 (S310). The communication unit 122 transmits the linked data (A) and the linked data (a) to the central control device 104 via the digital cellular phone network 3 (S311).
[0150]
The integrated authentication server 141 of the central control device 104 that has received the connection data (A) and the connection data (a) from the digital mobile phone 102a, as shown in FIG. 11, includes the first data included in the received connection data (a). Authenticate the door address based on the one-time password. The integrated authentication server 141 authenticates the user ID based on the third one-time password included in the received connection data (A) (S312). In step (S312), when the integrated authentication server 141 determines that both the door address and the user ID are authentic and both are authenticated successfully, the door address and the received user ID are input to the determination unit 142. Notification is made (S313).
[0151]
The determination unit 142 searches the storage unit 143 to determine whether one of the received user ID and the registered user ID matches (S314). In step (S <b> 314), when the received user ID matches any of the registered user IDs, the determination unit 142 determines from the storage unit 143 the door of the passage permission target door associated with the registered user ID. An address is acquired (S315). The determination unit 142 determines whether any of the door address transmitted from the digital cellular phone 102a notified from the integrated authentication server 141 matches the door address acquired from the storage unit 143 (S316).
[0152]
In step (S <b> 316), when the notified door address matches any of the door addresses acquired from the storage unit 143, the user with the received user ID passes the door of the door address. It is determined that the user is permitted. And the determination part 142 inputs the result of the user authentication which permits passage of a door to the integrated authentication server 141 (S317).
[0153]
The integrated authentication server 141 uses the first one-time password as a counter value. The integrated authentication server 141 substitutes the first encryption key and the first one-time password as parameters into the algorithm for encryption, and generates a fourth one-time password as passage permission information (S318). Then, the central controller 104 transmits the generated fourth one-time password to the digital mobile phone 102a via the digital mobile phone network 3 (S319).
[0154]
On the other hand, in step (S316), the determination unit 142 notifies the integrated authentication server 141 when the received user ID does not match any of the registered user IDs or when the received user ID matches any of the registered user IDs. The received door address does not match any of the door addresses associated with the registered user ID, and the user with the user ID is not permitted to pass through the door with the door address. It is determined that the user with the user ID is a user who is not permitted to pass through the door with the door address. And the determination part 142 inputs the result of the user authentication not permitting passage of a door to the integrated authentication server 141 (S320).
[0155]
Then, the integrated authentication server 141 transmits the first one-time password received from the digital mobile phone 102a to the digital mobile phone 102a through the digital mobile phone network 3 as it is as traffic prohibition information (S321). In step (S312), the integrated authentication server 141 does not permit the passage of the first one-time password received from the digital mobile phone 102a even when it is determined that either the door address or the user ID has failed. The information is transmitted as it is to the digital mobile phone 102a (S321).
[0156]
The digital mobile phone 102a receives the first one-time password or the fourth one-time password as the authentication result information from the integrated authentication server 141, and wirelessly transmits it to the authentication device 101a (S322). The receiving unit 119 of the authentication device 101a receives authentication result information from the digital mobile phone 102a. Then, the determination unit 118 compares the received first one-time password or the fourth one-time password with the second one-time password stored in the OTP storage unit 117 (S323).
[0157]
When the received authentication result information is the fourth one-time password and the comparison result in step (S323) matches, the determination unit 118 instructs the electric lock 106a of the door 107a to unlock the electric lock 106a. Is unlocked (S324). On the other hand, if the received authentication result information is the first one-time password and the comparison result in step (S323) does not match, the determination unit 118 does not unlock the electric lock 106a of the door 107a, and issues an alarm. A sound is sounded (S325).
[0158]
〔effect〕
According to such an entrance / exit management system, authentication devices 101a to 101c, digital mobile phones 102a to 102c, central control device 104, and communication method, the following effects can be obtained. The authentication devices 101a to 101c can make a call by connecting the first one-time password to the door address. The transmitter / receiver 121 of the digital mobile phone 2 can receive the object connection data in which the door address and the first one-time password are connected, and can transmit it to the central control device 104 via the digital mobile phone network 3. Furthermore, the integrated authentication server 141 of the central control device 104 registers the door addresses, encryption keys, and counter values of the authentication devices 101a to 101c. The integrated authentication server 141 receives the object connection data in which the door address and the first one-time password are connected from the digital mobile phone 2 via the digital mobile phone network 3, and the door address included in the object connection data. Can be authenticated based on the concatenated first one-time password.
[0159]
Therefore, the authenticity of the door address can be confirmed and verified based on the linked first one-time password. Moreover, since the first one-time password is a one-time password that is valid only for one authentication, it cannot be used even if it is wiretapped. Therefore, even if the integrated authentication server 141 receives the notification, the door address transmitted by the authentication devices 101a to 101c attached to the doors 106a to 106c is wiretapped and altered by a malicious user's digital mobile phone. Thus, it is possible to easily determine the authenticity of the door address and to easily detect eavesdropping and falsification of the door address.
[0160]
Further, the digital mobile phones 102a to 102c transmit the object connection data to the central control device 104 via the digital mobile phone network 3, and the integrated authentication server 141 of the central control device 104 transmits the object connection data to the digital mobile phone network. 3 from the digital portable telephones 102a to 102c. That is, as a relay means to the integrated authentication server 141 for the object connection data transmitted from the authentication devices 101a to 101c, a general-purpose digital cellular phone 102a to 102c possessed by a person other than the operator who issues and manages the door address. A communication device can be used. Therefore, there is no need to wire a wired communication line as in a management system using an ID card and a card reader, and there is no need to use a card reader under the management of the operator. Therefore, security can be easily improved at low cost.
[0161]
Further, even when there are a plurality of doors managed by the entrance / exit management system, such as a building door, the digital mobile phones 102a to 102c receive the door addresses from the authentication devices 101a to 101c and receive the central control device 104. By transmitting to, it is possible to control the unlocking of the plurality of doors. Therefore, it is not necessary to register the name and address of the door in the digital mobile phones 102a to 102c, and there is no possibility that the door that the user does not desire to unlock is unlocked. Therefore, the security of the entrance / exit management system can be easily improved.
[0162]
Further, the authentication devices 101a to 101c receive the authentication result information from the digital cellular phones 102a to 102c, the second one-time password OTP generation unit 114b, and the received authentication result information to the second A determination unit 118 that authenticates based on the one-time password is provided. Therefore, the authentication devices 101a to 101c can also authenticate the authentication result information based on the second one-time password. Therefore, the authentication devices 101a to 101c can further improve security.
[0163]
Moreover, the central controller 104 uses the fourth one-time password as the passage permission information. Therefore, even if the passage permission information is eavesdropped, the passage permission information itself is a one-time password that is valid only for one authentication, and cannot be used again. Therefore, the entrance / exit management system can reduce the risk of unauthorized use of the passage permission information, and can further improve security.
[0164]
Furthermore, the digital mobile phones 102a to 102c include a user ID storage unit 126 that stores a user ID and an OTP generation unit 124 that generates a third one-time password. The communication unit 122 includes a user ID and a third ID. The user connection data is generated by connecting the one-time password, and the generated user connection data and the received object connection data are connected and transmitted to the central control device 104. Further, in the integrated authentication server 141 of the central controller 104, the communication unit 141a receives user connection data from the digital mobile phones 102a to 102c. Further, in the integrated authentication server 141, user IDs, encryption keys, and counter values of users of the digital mobile phones 102a to 102c are registered. Then, the determination unit 141b authenticates the user ID included in the received user connection data based on the third one-time password connected to the user ID.
[0165]
Therefore, the digital cellular phones 102 a to 102 c can transmit user connection data to the central control device 104 in addition to the object connection data. The integrated authentication server 141 can receive user connection data in addition to the object connection data. Therefore, user identification data included in the user link data can also be authenticated based on the linked third one-time password. In addition, since the third one-time password is also a valid one-time password for only one authentication, it cannot be used even if it is wiretapped. The user ID can be managed in the central control device 104. Therefore, the security of the user identification data can be easily improved. For example, the central control device 104 can easily detect impersonation or falsification of a user ID.
[0166]
Further, when data is transmitted to the central control device 104 by packet communication generally used when performing data communication using a digital mobile phone in recent years, the digital mobile phones 102a to 102c can notify the user ID. Therefore, the determination unit 142 of the central control device 104 can perform user authentication using the user ID, and can recognize the caller telephone number by the calling number notification service as in the conventional central control device 404. Therefore, user authentication using the caller telephone number cannot be performed.
[0167]
Furthermore, even if the user changes the model or telephone number of the digital mobile phone, the user authentication software program used on the digital mobile phone before the change can be downloaded to the digital mobile phone after the change, before the change. The central control device 104 can be authenticated using the same user ID, second encryption key, and counter value. Therefore, it is not necessary to rewrite information on the user stored in the central control device 104.
[0168]
In addition, the transceiver 121 of the digital cellular phones 102a to 102c transmits an activation signal that activates the counter 112 of the authentication devices 101a to 101c. The receiving unit 119 of the authentication devices 101a to 101c receives an activation signal for operating the counter 112 from the digital mobile phones 102a to 102c. When the detection result is input from the sensor 111a and the counter 112 receives an operation instruction from the reception unit 119, the counter 112 advances the counter value. And the transmission part 116 transmits a thing connection data.
[0169]
Therefore, when the authentication devices 101a to 101c receive detection results from the sensors 111a to 111c, the authentication devices 101a to 101c use the detection results as an opportunity to link the object connection data in conjunction with the situation of the doors 106a to 106c to which the door addresses are assigned. You can make a call. Moreover, the authentication devices 101a to 101c are useless because the counter 112 does not advance the counter value when the activation signals from the digital mobile phones 102a to 102c are not received even if there are inputs from the sensors 111a to 111c. Transmission of material connection data can be prevented. Furthermore, the number of door address authentication one-time passwords generated by the integrated authentication server 141 can be reduced.
[0170]
[Example of change]
The present invention is not limited to the first and second embodiments, and various modifications can be made. As shown in FIG. 12, also in the communication system shown in FIG. 1, like the entrance / exit management system shown in FIG. 5, the digital mobile phone 302 includes a transceiver 321 and the ID transmission device 301a includes a receiving unit 319. You may make it prepare.
[0171]
The communication system shown in FIG. 12 includes an ID transmission device 301a, a digital mobile phone 302, a digital mobile phone network 3, an authentication server 4, and an application execution server 5. Except for the ID transmission device 301a and the digital cellular phone 302, the communication system is the same as that shown in FIG. The ID transmission device 301a includes a main body 310a and a sensor 11a. The main body 310 a includes a counter 312, an encryption key storage unit 13, an OTP generation unit 14, a unique ID storage unit 15, a transmission unit 16, a housing unit 17 a, and a reception unit 319. The digital cellular phone 302 includes a transceiver 321 and a main body 324. The main body 324 includes a communication unit 22 and a control unit 323. The ID transmitter 301a is the same as the ID transmitter 1a and the digital mobile phone 2 shown in FIG. 1 except for the counter 312 and the receiver 319, and the digital mobile phone 302 is the same as the ID transmitter 1a and the digital mobile phone 2 shown in FIG.
[0172]
The receiving unit 319 receives an activation signal 318 that activates the counter 312 from the digital mobile phone 302. When receiving the activation signal 318, the reception unit 119 instructs the counter 312 to operate. The receiving unit 319 is the same as the receiving unit 119 illustrated in FIG. 5 except that it does not receive authentication result information. The counter 312 operates only when receiving an operation instruction from the receiving unit 319. When the detection result is input from the sensor 11 a and the operation instruction is received from the reception unit 319, the counter 312 advances the counter value by one and inputs the advanced counter value to the OTP generation unit 14. The counter 312 does not advance the counter value or input it to the OTP generation unit 14 only by the input from the sensor 11a. Except for this point, the counter 312 is the same as the counter 12 shown in FIG.
[0173]
The transceiver 321 transmits an activation signal 318 that activates the counter 312 of the ID transmission device 301a. When receiving the instruction for transmitting the activation signal from the control unit 323, the transceiver 321 transmits the activation signal. The transceiver 321 is the same as the transceiver 121 shown in FIG. 5 except that the authentication result information is not transmitted. The control unit 323 instructs the transceiver 321 to transmit an activation signal. For example, in response to a transmission operation from the user, the control unit 323 instructs transmission of an activation signal. Except for this point, the control unit 323 is the same as the control unit 23 shown in FIG.
[0174]
According to such a communication system, the ID transmission device 301a, and the digital mobile phone 302, the ID transmission device 301a does not receive the activation signal 318 from the digital mobile phone 302 even if there is an input from the sensor 11a. The counter 312 does not advance the counter value and does not transmit the concatenated data (a) 18a. Therefore, the ID transmission device 301a can prevent transmission of useless connection data. Furthermore, the number of authentication server one-time passwords generated by the authentication server 4 can be reduced.
[0175]
Also, the digital cellular phones 2 and 302 shown in FIG. 1 and FIG. 12 also have a computer, a reading device 21 that receives the object connection data, and the object connection data received by the reading device 21 in the authentication server 4. This can be realized by executing a program for causing the communication unit 22 to transmit via the network 3 to function.
[0176]
【The invention's effect】
As described above, according to the present invention, a transmitting device, a mobile terminal, an authentication server, a communication system, a program, and a communication method that can authenticate object identification data attached to an object and can easily improve security. Can be provided.
[Brief description of the drawings]
FIG. 1 is a diagram showing a configuration of a communication system according to a first embodiment of the present invention.
FIG. 2 shows a unique ID, an encryption key, a counter value and a thing one-time password, a unique ID / encryption key / counter value storage table, an authentication server one-time password of the ID transmission device according to the first embodiment of the present invention, It is a figure which shows a unique ID authentication logic.
FIG. 3 is a flowchart showing an operation procedure of the ID transmission device according to the first embodiment of the present invention.
FIG. 4 is a flowchart showing an operation procedure of the authentication server according to the first embodiment of the present invention.
FIG. 5 is a diagram showing a configuration of an entrance / exit management system according to a second embodiment of the present invention.
FIG. 6 is a block diagram showing a configuration of an authentication apparatus according to a second embodiment of the present invention.
FIG. 7 shows a door address, a first encryption key, a counter value and a first one-time password, a door address / encryption key / counter value storage table, a door address of the authentication apparatus according to the second embodiment of the present invention. It is a figure which shows the one-time password for authentication, and a door address authentication logic.
FIG. 8 shows a user ID, a second encryption key, a counter value and a third one-time password, a user ID / encryption key / counter value storage table, a user of the digital cellular phone according to the second embodiment of the present invention. It is a figure which shows the one time password for ID authentication, and a user ID authentication logic.
FIG. 9 is a diagram showing an authentication logic of authentication result information in the entrance / exit management system according to the second embodiment of the present invention.
FIG. 10 shows transmission of connection data (a) and user connection data (A) from the origination of connection data (a) by the authentication apparatus according to the second embodiment of the present invention to the central control apparatus. It is a flowchart which shows the procedure until.
FIG. 11 is a flowchart showing a procedure from authentication of a door address and a user user ID by the central control device 104 to control of unlocking of the door 106a by the authentication device 101a according to the second embodiment of the present invention. .
FIG. 12 is a diagram showing a configuration of a communication system according to a modified example of the present invention.
FIG. 13 is a diagram showing a conventional entrance / exit management system.
FIG. 14 is a flowchart showing a control method of a conventional entrance / exit management system.
[Explanation of symbols]
1a to 1c, 301a ID transmitter
2,102a-102c, 302 Digital mobile phone
3 Digital mobile phone network
4 Authentication server
5 Application execution server
10a-10c, 310a body
11a-11c, 111a-111c sensor
12, 112, 312 counter
13,113 Encryption key storage unit
14, 114a, 114b OTP generator
15 Unique ID storage
16,116 transmitter
17 Case
21 Reader
22,122 Communication unit
23, 127, 323 Control unit
24, 128, 324 body
41 Unique ID / OTP receiver
42 Unique ID / encryption key / counter value storage table
43 Unique ID existence judgment part
44 OTP generator
45, 141b determination unit
46 Result output section
101a to 101c authentication apparatus
104,404 Central control unit
106a-106c, 405a-405c Electric lock
115 Door address storage
117 OTP storage unit
118 Judgment part
119,319 receiver
121,321 transceiver
123 counter
124 OTP generator
125 Encryption key storage unit
126 User ID storage unit
141 Integrated Authentication Server
141a Communication Department
141c Door address / encryption key / counter value storage table
141d User ID / encryption key / counter value storage table
141e OTP generator
142 judgment part
143 storage unit
402 Mobile phone
403 telephone network
404a Caller ID recognition means
404b Determination means
404c storage means
404d Position information recognition means
407a to 407c transmission means
408a to 408c receiving means

Claims (11)

Object identification data storage means for storing object identification data assigned to the object;
An object one-time password generating means for generating an object one-time password to be linked to the object identification data;
A transmission device comprising: a transmission means for connecting the product identification data and the product one-time password, and transmitting the connected product connection data. Detecting means for detecting the state of the object;
The transmission device according to claim 1, wherein the transmission unit transmits the object connection data based on a detection result by the detection unit. The transmission device according to claim 2, wherein the thing one-time password generating unit generates the thing one-time password based on a detection result by the detecting unit. A receiving means for receiving authentication result information indicating a result of the user authentication from the mobile terminal when a user of the mobile terminal receiving the object connection data receives user authentication;
A result one-time password generating means for generating a result one-time password for authenticating the authentication result information;
4. The transmitting device according to claim 1, further comprising: a result authentication unit that authenticates the received authentication result information based on the one-time password for results. 5. Receiving means for receiving the object connection data obtained by connecting the object identification data attached to the object and the object one-time password;
A mobile terminal comprising: transmission means for transmitting the received object connection data to an authentication server for authenticating the object identification data via a mobile communication network. User identification data storage means for storing user identification data for identifying a user of the mobile terminal;
A user one-time password generating means for generating a user one-time password to be linked to the user identification data;
The said transmission means connects the said user identification data and the said user one-time password, The said user connection data and the said object connection data are transmitted to the said authentication server. Mobile terminal. Receiving means for receiving the object connection data obtained by connecting the object identification data attached to the object and the object one-time password from the mobile terminal via the mobile communication network;
An authentication server comprising: an object identification data authenticating unit that authenticates the object identification data included in the received object connection data based on the object one-time password connected to the object identification data. The receiving means receives user connection data in which user identification data for identifying a user of the mobile terminal and a user one-time password are connected from the mobile terminal,
8. The apparatus according to claim 7, further comprising user identification data authentication means for authenticating the user identification data included in the received user connection data based on the user one-time password connected to the user identification data. The listed authentication server. A transmitting device for connecting the object identification data given to the object and the object one-time password to be connected to the object identification data, and transmitting the connected object connection data;
The object connection data transmitted by the transmitting device is received from a mobile terminal that has received the object connection data via a mobile communication network, and the object identification data included in the received object connection data is converted into the object identification data. A communication system comprising: an authentication server that performs authentication based on the connected one-time password. Computer
Receiving means for receiving the object connection data obtained by connecting the object identification data attached to the object and the object one-time password;
A program for causing the object connection data received by the reception means to function as a transmission means for transmitting via an mobile communication network to an authentication server for authenticating the object identification data. Generating an object one-time password to be linked to the object identification data attached to the object;
Connecting the object identification data and the object one-time password;
And a step of transmitting the connected object connection data.

Images